Routing Issue - Site to Site VPN
Posted on 2008-09-30
I have a site to site VPN setup between a ASA & 851W router, I seem to have an issue with routing that is baffling me.
As my source and destination protected networks as 10.10.0.0/16 (home office) and 10.10.220.0/29 (remote soho). The ASA has a route of 10.10.0.0/16 and this point to our MPLS router that know off all the other subnets. The local subnet for the ASA is 10.10.20.0/24. Once the VPN is established I can ping devices on the 10.10.20.0/24 network, but not on say the 10.10.24.0/24 network. Now here is the part that I baffled about, if I remove the 10.10.0.0/16 route and replace it with 10.10.24.0/24 point to the same MPLS router as the next hop it works! Why would the broader route not work?